Auditors audit for one year. They make sure all the processes and controls are h... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		debarshri on Jan 15, 2023 \| parent \| context \| favorite \| on: CircleCI says hackers stole encryption keys and cu... Auditors audit for one year. They make sure all the processes and controls are hit and used as expected. I am wondering why the audit firm is not made accountable when these hacks happen.

Sahbak on Jan 15, 2023 [–]

Having gone through SOC2 at two different companies, anyone who takes these certificates seriously is a fool.

wrldos on Jan 15, 2023 | [–]

Indeed they are just ticking a box for your customers.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact